Format string vulnerability in wrapper.c in CVS 1.12.x up to and including 1.12.8, and 1.11.x up to and including 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cvs cvs 1.11.10 |
||
cvs cvs 1.11.11 |
||
cvs cvs 1.11.5 |
||
cvs cvs 1.11.6 |
||
openpkg openpkg 2.0 |
||
openpkg openpkg current |
||
cvs cvs 1.10.7 |
||
cvs cvs 1.10.8 |
||
cvs cvs 1.11 |
||
cvs cvs 1.11.16 |
||
cvs cvs 1.11.2 |
||
cvs cvs 1.12.5 |
||
cvs cvs 1.12.7 |
||
cvs cvs 1.11.14 |
||
cvs cvs 1.11.15 |
||
cvs cvs 1.12.1 |
||
cvs cvs 1.12.2 |
||
sgi propack 2.4 |
||
sgi propack 3.0 |
||
cvs cvs 1.11.1 |
||
cvs cvs 1.11.1_p1 |
||
cvs cvs 1.11.3 |
||
cvs cvs 1.11.4 |
||
cvs cvs 1.12.8 |
||
openpkg openpkg 1.3 |
||
freebsd freebsd 2.1.5 |
||
freebsd freebsd 2.1.6 |
||
freebsd freebsd 2.2.5 |
||
freebsd freebsd 2.2.6 |
||
freebsd freebsd 3.4 |
||
freebsd freebsd 3.5 |
||
freebsd freebsd 3.5.1 |
||
freebsd freebsd 4.1 |
||
freebsd freebsd 4.1.1 |
||
freebsd freebsd 4.2 |
||
freebsd freebsd 4.3 |
||
freebsd freebsd 1.1.5.1 |
||
freebsd freebsd 2.0 |
||
freebsd freebsd 2.2 |
||
freebsd freebsd 2.2.2 |
||
freebsd freebsd 3.0 |
||
freebsd freebsd 3.1 |
||
freebsd freebsd 4.0 |
||
freebsd freebsd 4.10 |
||
freebsd freebsd 4.5 |
||
freebsd freebsd 4.7 |
||
freebsd freebsd 4.8 |
||
freebsd freebsd 4.9 |
||
freebsd freebsd 5.1 |
||
openbsd openbsd 3.4 |
||
openbsd openbsd 3.5 |
||
freebsd freebsd 4.4 |
||
freebsd freebsd 4.6 |
||
freebsd freebsd 5.0 |
||
freebsd freebsd 5.2 |
||
freebsd freebsd 5.2.1 |
||
freebsd freebsd 2.1.6.1 |
||
freebsd freebsd 2.1.7.1 |
||
freebsd freebsd 2.2.8 |
||
gentoo linux 1.4 |
||
freebsd freebsd 2.0.5 |
||
freebsd freebsd 2.1.0 |
||
freebsd freebsd 2.2.3 |
||
freebsd freebsd 2.2.4 |
||
freebsd freebsd 3.2 |
||
freebsd freebsd 3.3 |
||
freebsd freebsd 4.6.2 |
||
openbsd openbsd current |